Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.mft
File: 3keU2fyrI-wF3d1QSKP8cgQAKio.mft (raw, json)
Hash identifier: RQ48cw8wm3GoGe/ifT2dQobIKocb4xCQeYKsyM4eSJM=
Subject key identifier: C7:CD:14:E5:0B:3D:01:2A:3F:85:7C:84:38:0A:84:9D:7E:59:81:D5
Authority key identifier: DE:47:94:D9:FC:AB:23:EC:05:DD:DD:50:48:A3:FC:72:04:00:2A:2A
Certificate issuer: /CN=de4794d9fcab23ec05dddd5048a3fc7204002a2a
Certificate serial: 019654C9A5C8953C53C0526D91E5BF9E6DF8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3keU2fyrI-wF3d1QSKP8cgQAKio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.mft
Manifest number: 0E2D
Signing time: Sun 20 Apr 2025 20:00:23 +0000
Manifest this update: Sun 20 Apr 2025 20:00:23 +0000
Manifest next update: Mon 21 Apr 2025 20:00:23 +0000
Files and hashes: 1: 3keU2fyrI-wF3d1QSKP8cgQAKio.crl (hash: 7OLnTkk2Pkmn4LC4BZv4P4/vDuzo2/qvx6YEDn8FRrI=)
2: ZK9gU4FBN8KUQTPHGhgGaXPIWjk.roa (hash: YFHfAWvmuV1pyKRAlUfEUWxi+ZLKrTZD/d9TC0Av1JQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.mft
rsync://rpki.ripe.net/repository/DEFAULT/3keU2fyrI-wF3d1QSKP8cgQAKio.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 20:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:c9:a5:c8:95:3c:53:c0:52:6d:91:e5:bf:9e:6d:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de4794d9fcab23ec05dddd5048a3fc7204002a2a
Validity
Not Before: Apr 20 20:00:23 2025 GMT
Not After : Apr 21 20:00:23 2025 GMT
Subject: CN=c7cd14e50b3d012a3f857c84380a849d7e5981d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:b0:a8:ea:e5:2a:29:1d:15:76:bd:bc:39:e5:
fd:eb:db:24:18:88:4b:db:4e:aa:0b:44:38:75:5a:
7e:67:cf:94:2d:89:a4:28:dd:1f:a1:88:ae:d9:56:
c5:2f:44:8f:35:43:53:f5:fc:b4:5d:f7:f1:e7:8d:
5e:60:82:2e:0d:1b:ef:a6:0a:eb:9c:e0:19:1e:61:
52:98:0c:7b:02:95:3f:f4:29:08:cf:b4:39:68:c1:
d2:c4:0e:57:ea:bd:f0:ec:97:f1:ab:92:69:e9:14:
76:1c:8e:81:fd:b2:31:58:b3:c5:15:95:75:92:da:
3d:66:da:e0:57:05:a4:e1:b0:cd:4b:ac:5d:49:e7:
f0:80:d5:75:4d:a6:04:00:c3:d7:dc:3f:53:a2:28:
5c:44:52:e6:f5:cb:be:37:3a:b5:04:c5:69:17:53:
b4:53:fe:ef:3a:96:e4:81:1c:c8:a6:2b:d1:fa:96:
97:31:2e:c1:52:66:1c:21:21:65:81:3f:a5:a3:a4:
e1:43:8f:54:6f:c8:7a:a1:b4:14:e3:b6:b1:06:8b:
47:2a:eb:dc:11:31:c6:d6:9f:f7:ff:e0:73:a8:2f:
cd:66:0c:cd:bd:59:80:61:6c:d5:27:44:f4:41:b3:
f7:86:48:38:0c:0d:a3:cc:e6:6d:98:10:57:52:ce:
2e:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:CD:14:E5:0B:3D:01:2A:3F:85:7C:84:38:0A:84:9D:7E:59:81:D5
X509v3 Authority Key Identifier:
keyid:DE:47:94:D9:FC:AB:23:EC:05:DD:DD:50:48:A3:FC:72:04:00:2A:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3keU2fyrI-wF3d1QSKP8cgQAKio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:98:78:e0:ad:d0:15:09:73:a4:04:9b:18:cf:b4:a6:8f:b7:
9b:67:85:76:ab:94:ef:68:5d:14:14:a3:b7:7d:6c:07:b3:ec:
2c:26:3f:34:ee:3e:3e:e4:db:19:09:7a:42:ca:3c:6f:30:91:
1a:fb:16:53:76:65:17:cf:22:0a:64:9d:84:aa:25:ec:b4:62:
32:56:a0:c0:26:35:a9:48:d5:7c:83:f5:15:63:0d:54:04:b3:
a8:91:2d:b1:6f:d8:0d:18:9a:98:f6:95:ea:8a:99:3d:0e:b1:
ba:38:38:af:5d:c8:b0:d0:34:b5:36:e9:9a:0b:e8:4b:ab:44:
58:c3:14:0c:95:03:76:8f:5a:d9:13:cd:fc:1b:04:a8:61:c9:
b5:7d:bc:62:e7:2c:3b:b7:11:a2:3e:f9:76:23:4b:4a:f6:52:
3a:8f:0d:a4:4d:68:66:7f:5e:3c:df:e6:3c:b1:c6:bb:fb:ab:
b3:c9:27:60:6a:35:d6:b5:50:27:e3:31:52:06:22:58:27:3e:
c9:96:a0:7c:20:b7:4e:e0:72:c3:ae:9e:d6:15:19:c8:b8:76:
37:15:25:7c:12:82:e5:b9:66:85:f9:57:b3:76:4f:dd:fb:dc:
bf:8c:e0:b9:e8:4c:65:8e:5d:d3:60:d2:c0:2f:51:5c:12:04:
5c:e6:d9:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 04:03:59 2025 by rpki-client